From d7cdf1c089364874454b9cea484f99555fedb006719b72caa4615c726f673978 Mon Sep 17 00:00:00 2001 From: Dominique Leuenberger Date: Tue, 27 Jul 2021 09:24:08 +0000 Subject: [PATCH] Accepting request 908456 from GNOME:Next - Update to version 2.32.3 (boo#1188697) OBS-URL: https://build.opensuse.org/request/show/908456 OBS-URL: https://build.opensuse.org/package/show/GNOME:Factory/webkit2gtk3?expand=0&rev=307 --- webkit2gtk3.changes | 32 +++++++++++++++++++++++++++----- webkit2gtk3.spec | 2 +- webkitgtk-2.32.2.tar.xz | 3 --- webkitgtk-2.32.2.tar.xz.asc | 6 ------ webkitgtk-2.32.3.tar.xz | 3 +++ webkitgtk-2.32.3.tar.xz.asc | 6 ++++++ 6 files changed, 37 insertions(+), 15 deletions(-) delete mode 100644 webkitgtk-2.32.2.tar.xz delete mode 100644 webkitgtk-2.32.2.tar.xz.asc create mode 100644 webkitgtk-2.32.3.tar.xz create mode 100644 webkitgtk-2.32.3.tar.xz.asc diff --git a/webkit2gtk3.changes b/webkit2gtk3.changes index dd46168..7ec75c7 100644 --- a/webkit2gtk3.changes +++ b/webkit2gtk3.changes @@ -1,3 +1,19 @@ +------------------------------------------------------------------- +Mon Jul 26 15:38:26 UTC 2021 - Michael Gorse + +- Update to version 2.32.3 (boo#1188697): + + Properly set the cookies settings after a network process + crash. + + Fix accessibility tree after a cross site navigation with PSON + enabled. + + Ensure WebKitScriptWorld::window-object-cleared signal is + always emitted. + + Fix several crashes and rendering issues. + + Security fixes: CVE-2021-21775, CVE-2021-21779, CVE-2021-30663, + CVE-2021-30665, CVE-2021-30689, CVE-2021-30720, CVE-2021-30734, + CVE-2021-30744, CVE-2021-30749, CVE-2021-30795, CVE-2021-30797, + CVE-2021-30799. + ------------------------------------------------------------------- Mon Jul 19 18:36:42 UTC 2021 - Michael Gorse @@ -9,6 +25,7 @@ Mon Jul 19 18:36:42 UTC 2021 - Michael Gorse + Handle null native surface for for surfaceless rendering. + Fix JavaScriptCore crash on 32-bit big endian systems. + Fix several crashes and rendering issues. + + Security fixes: CVE-2021-30758. ------------------------------------------------------------------- Wed May 19 01:10:34 UTC 2021 - Michael Gorse @@ -52,7 +69,8 @@ Fri Apr 2 17:34:41 UTC 2021 - Michael Gorse threading suspension. - Fix the build on RISC-V with GCC 11. - Fix several crashes and rendering issues. - + Security fixes: CVE-2021-1788, CVE-2021-1844, CVE-2021-1871 + + Security fixes: CVE-2021-1788, CVE-2021-1844, CVE-2021-1871, + CVE-2021-30682. - Drop old-wayland-scanner.patch and webkit-process.patch, and also drop support for Leap 15.0 and 15.1, since they are no longer supported. @@ -119,7 +137,8 @@ Sun Mar 21 20:33:09 UTC 2021 - Michael Gorse + Update user agent quirks again for Google Docs and Google Drive. + Fix several crashes and rendering issues. + Security fixes: CVE-2020-27918, CVE-2020-29623, CVE-2021-1765 - CVE-2021-1789, CVE-2021-1799, CVE-2021-1801, CVE-2021-1870. + CVE-2021-1789, CVE-2021-1799, CVE-2021-1801, CVE-2021-1870, + CVE-2021-21806. ------------------------------------------------------------------- Fri Feb 19 07:45:12 UTC 2021 - Guillaume GARDET @@ -234,7 +253,9 @@ Mon Sep 14 23:28:52 UTC 2020 - Michael Gorse + Fix NTLM authentication. + Don't try to use SHM on wayland with older wpebackend-fdo. + Fix the build due to seccomp.h header not found. - + Security fixes: CVE-2020-9947, CVE-2020-9948, CVE-2020-9951. + + Security fixes: CVE-2020-9947, CVE-2020-9948, CVE-2020-9951, + CVE-2021-1817, CVE-2021-1820, CVE-2021-1825, CVE-2021-1826, + CVE-2021-30661. - Drop seccomp-build-fix.patch and wpe-shm-check.patch: fixed upstream. @@ -406,7 +427,7 @@ Thu Mar 12 12:10:03 UTC 2020 - Bjørn Lie + Add about:gpu to show information about the graphics stack. + Security fixes: CVE-2020-10018, CVE-2020-3885, CVE-2020-3894, CVE-2020-3895, CVE-2020-3897, CVE-2020-3900, CVE-2020-3901, - CVE-2020-3902. + CVE-2020-3902, CVE-2021-30762. - Drop webkit2gtk3-ppc-build-fix.patch: Fixed upstream. ------------------------------------------------------------------- @@ -633,7 +654,8 @@ Mon Sep 9 09:59:58 UTC 2019 - Bjørn Lie + Single process model has been deprecated for security reasons. + Security fixes: CVE-2019-8625, CVE-2019-8720, CVE-2019-8769, CVE-2019-8771, CVE-2019-8710, CVE-2019-8743, CVE-2019-8764, - CVE-2019-8766, CVE-2019-8782, CVE-2019-8808, CVE-2019-8815. + CVE-2019-8766, CVE-2019-8782, CVE-2019-8808, CVE-2019-8815, + CVE-2021-30666, CVE-2021-30761. ------------------------------------------------------------------- Tue Sep 3 12:11:49 UTC 2019 - Bjørn Lie diff --git a/webkit2gtk3.spec b/webkit2gtk3.spec index 19e8981..312664e 100644 --- a/webkit2gtk3.spec +++ b/webkit2gtk3.spec @@ -31,7 +31,7 @@ %define _gold_linker 0 %endif Name: webkit2gtk3 -Version: 2.32.2 +Version: 2.32.3 Release: 0 Summary: Library for rendering web content, GTK+ Port License: BSD-3-Clause AND LGPL-2.0-or-later diff --git a/webkitgtk-2.32.2.tar.xz b/webkitgtk-2.32.2.tar.xz deleted file mode 100644 index 79f0636..0000000 --- a/webkitgtk-2.32.2.tar.xz +++ /dev/null @@ -1,3 +0,0 @@ -version https://git-lfs.github.com/spec/v1 -oid sha256:1790f86975bdef957ba9a12fc09202de8f55c885ee38467afc50d2bdb7a6c5cd -size 23321888 diff --git a/webkitgtk-2.32.2.tar.xz.asc b/webkitgtk-2.32.2.tar.xz.asc deleted file mode 100644 index b9eae37..0000000 --- a/webkitgtk-2.32.2.tar.xz.asc +++ /dev/null @@ -1,6 +0,0 @@ ------BEGIN PGP SIGNATURE----- - -iF0EABEDAB0WIQTX/PYc+aLeqzHYG9Pz0yLQ7EWCwwUCYOgJBgAKCRDz0yLQ7EWC -w2EbAJ4zW4llntTdDij8JPl5BKiQC+24tACgodAZTe6O+Dop26uRFedmF4thhgE= -=OALk ------END PGP SIGNATURE----- diff --git a/webkitgtk-2.32.3.tar.xz b/webkitgtk-2.32.3.tar.xz new file mode 100644 index 0000000..b970abb --- /dev/null +++ b/webkitgtk-2.32.3.tar.xz @@ -0,0 +1,3 @@ +version https://git-lfs.github.com/spec/v1 +oid sha256:c1f496f5ac654efe4cef62fbd4f2fbeeef265a07c5e7419e5d2900bfeea52cbc +size 23323972 diff --git a/webkitgtk-2.32.3.tar.xz.asc b/webkitgtk-2.32.3.tar.xz.asc new file mode 100644 index 0000000..ebe1989 --- /dev/null +++ b/webkitgtk-2.32.3.tar.xz.asc @@ -0,0 +1,6 @@ +-----BEGIN PGP SIGNATURE----- + +iF0EABEDAB0WIQTX/PYc+aLeqzHYG9Pz0yLQ7EWCwwUCYPqiRwAKCRDz0yLQ7EWC +w5R2AKC02Ps4OAdfYFAj7HnLkKqciDD+TwCfWfDGotwqJSzpc80qUF/qAosm9iM= +=3q32 +-----END PGP SIGNATURE-----